ocservice — a bash toolkit for managing ocserv users
Xryndelson
xryndelson at gmail.com
Sat Apr 11 03:43:50 PDT 2026
Hi,
I wanted to share a tool I've been using in production for managing
ocserv users — ocservice.
It's a set of bash scripts designed for servers where ocserv is built
from source with a custom prefix and easy-rsa is used for PKI. The main
features:
- Create certificate users (easy-rsa + .p12 export)
- Create login/password users via ocpasswd
- User Management Center — lists all users with certificate dates, ban
points, online status, connection limits
- Supports cert, plain and both auth modes
- config-per-user file created automatically for each user with a
commented settings template
- Certificate date cache for fast loading with large user counts (100+
users)
- Username pool for generating unique names automatically
- install.sh detects existing installations and updates without
overwriting user data
I run it on a server with ~100 users and it handles day-to-day
administration without touching ocserv internals directly.
Repository: https://github.com/Ilyntiy/ocservice
Feedback and suggestions are welcome.
Best regards,
Ilyntiy
More information about the openconnect-devel
mailing list